长沙招聘

Job Description:

Responsibilities:

- Manage and maintain a compliance measurement framework to monitor and report on the effectiveness of compliance controls across all functions and compliance areas.

- Performs risk assessments to identify control weaknesses and assess the effectiveness of existing controls, and recommends remedial action

- Lead security risk management initiatives, ensure that JCI security policies and guidelines are implemented and complemented by local security instructions

- Proactively engage with all business areas to ensure compliance processes, tools and IT Systems are appropriately embedded into business operations.

- Work with regional IT teams to encourage a security mindset throughout business process from concept, implementation and operations

- Build/maintain knowledge of applicable laws, rules, regulations, guidance and accreditation standards to promote organizational adaptation and compliance.

- Initiate, facilitate and promote compliance activities and resources within the organization, including regular communication and awareness.

- Assist in due diligence efforts to perform risk assessments of JV, vendors and partners, when requested

- Subject-matter expert for cybersecurity compliance regulatory requirements and demands e.g. China Cybersecurity Law, GDPR, etc.

Qualifications:

- Excellent communication skills, business writing, presentation skills, and influencing skills

- Experience with internal control functions and regulators

- Minimum 5 years' of Enterprise Risk Management experience required

- Must be confident in stakeholder interactions

- Strong negotiation, facilitation, and networking skills

- Strong analytical and data interpretation skills including the ability to review, interpret and present data in a concise and precise manner

- Business Analysis /Project management experience with proven record for managing simultaneous requirements

- Demonstrated experience with compliance risk management and/or quality assurance, including risk identification, evaluation, mitigation and management

- Professional compliance related certification (CISA, CISM, CISSP, ISO27001LA) an advantage

- Familiarity with regulatory compliance models and standards

- Process expertise in GRC areas e.g. risk management, compliance & regulation, controls automation, continuous controls monitoring and security.

- Have a strong working knowledge of some or all of CSL, ISO27001, SSAE16/18, Infosec standards, GDPR, ITIL, Cyber essentials.

关于江森自控
在江森自控，我们致力于改善人们的生活、工作、学习和娱乐环境。江森自控致力于可持续发展，公司承诺在2040年前实现净零碳排放。作为智慧、健康和可持续建筑的全球领导者，我们凭借超过135年的创新经验，运用全面的数字化解决方案OpenBlue及建筑科技领域完整的产品和解决方案组合，为医疗、教育、数据中心、机场、体育场和生产制造等众多领域实现可持续发展的蓝图。江森自控在全球150多个国家拥有100,000名专业员工，旗下拥有多个业内值得信赖的品牌。
亚太区概况
通过广泛的业务网络和足迹，江森自控致力于为该地区的客户提供全方位的卓越服务:
29家制造工厂
10处研发基地
260多个分支机构
28000多名员工
*以上数据包含江森自控和江森自控日立空调
公司在中国拥有：
9000多名员工
9家制造工厂
3处研发基地
40多个办事处
100多个销售支持点
我们的价值观
诚信为先
我们承诺诚实和透明。我们坚持***诚信标准并信守我们做出的承诺。
客户至上
客户成功，我们才能成功。长期战略合作关系带来的独特洞见和实力，让我们能够创造卓越的客户体验与解决方案。
使命为本
我们坚信利成于益，勇于承担：通过我们提供的解决方案、我们对社会的奉献、我们开展业务的方式以及我们对保护人民和环境的承诺让世界变得更加美好。
着眼未来
我们的创新和持续改进文化激励我们在解决当今挑战的同时，不断思考“接下来会发生什么”。
同一个团队
我们是同一个团队，致力于团结协作，创造高效适用的解决方案，推动世界进步。